header-logo
Suggest Exploit
explore-vulnerabilities

Explore Vulnerabilities

Version
Year

Explore all Exploits:

Dazzle Blast Remote File Inclusion Vulnerability

The vulnerability exists due to insufficient sanitization of user input in the 'require_once($ROOTDIR.'admin/functions/general.php')' parameter in the 'admin/includes/createemails.php' script. This can be exploited to include arbitrary files from remote locations by using a URL in the 'ROOTDIR' parameter in a HTTP request.

Exploit for ProFTPd mod_ctrls Vulnerability

Exploit for the ProFTPd mod_ctrls vulnerability. Stack Overflow in function int pr_ctrls_recv_request(pr_crls_cl_t *cl) unchecked buffer for arguments of the module. Connects to the unix domain socket and sends a string that is longer than the buffer (char[512]). Works on OpenSuSE 10.2 on i686.

redcat media (inurl:index.php?contentId=) SQL Injection Vulnerability

A SQL injection vulnerability exists in the Redcat Media web application. An attacker can exploit this vulnerability by sending a malicious SQL query to the vulnerable parameter 'contentId' in the 'index.php' page. This can allow the attacker to gain access to sensitive information from the database.

SQL Injection in Achievo

SQL injection is a code injection technique that exploits a security vulnerability occurring in the database layer of an application. The vulnerability is present when user input is either incorrectly filtered for string literal escape characters embedded in SQL statements or user input is not strongly typed and thereby unexpectedly executed.

GPG4Win – GNU Privacy Assistant – GPA.EXE – Crash PoC

This PoC exploits a buffer overflow vulnerability in GPA.EXE, the executable for the GNU Privacy Assistant (GPA) component of GPG4Win. When a specially crafted PGP message is pasted into the GPA Clipboard, it causes a crash. The PoC does not seem to overwrite anything, even when the content is increased to 10,000+ characters.

Recent Exploits: